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DETAILED ACTION 



This Examiner's Amendment and Examiner's Reasons for Allowance action is in 
response to the filing of 03/09/2010. 

EXAMINER'S AMENDMENT 

1. An examiner's amendment to the record appears below. Should the changes and/or 
additions be unacceptable to applicant, an amendment may be filed as provided by 37 CFR 
1.312. To ensure consideration of such an amendment, it MUST be submitted no later than the 
payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview with 
Joe Acayan on 04/23/2010. 

The application has been amended as follows: 

Claim 1 (Currently Amended) A method performed by a server processor executing 
computer executable instructions stored in a computer readable memory device, the method 
comprising: 

receiving, at [[a]] the server processor, a request from a client processor to establish a 
transmission control protocol (TCP) connection, wherein the TCP includes a link establishment 
phase and an authentication phase, wherein initiation of the link establishment phase occurs apart 
from the authentication phase, and wherein the receiving step and following steps occur during 
the link establishment phase; 
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creating an extensible authentication protocol (EAP) session request to the [[first]] client 
processor while still in the link establishment phase, wherein the [[first]] client processor enters 
an authentication session with the server processor as a result of receiving the EAP session 
request; 

receiving a response from the [[first]] client processor in response to sending the standard 
response; 

determining whether the response from the [[first]] client processor indicates that the 
[[first]] client processor will comply with the authentication session; and 

if the [[first]] client processor will not comply with the authentication session then 
performing a substep of restricting access of the [[first]] client processor . 

Claim 6 (Currently Amended) The method of claim 5, wherein a first value is set for data 
from the [[second]] server processor to the [[first]] client processor, and where a second value is 
set for data from the [[first]] client processor to the [[second]] server processor. 

Claims 9-11 (Canceled). 

Claim 12 (Currently Amended) The method of claim 1, wherein the [[second]] server 
processor intercepts a transmission from the [[first]] client processor. 
Claim 20 (Currently Amended) An apparatus comprising: 
one or more processors; 
at least one server processor; 
at least one client processor; 
a network interface; 
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a computer-readable storage [[medium]] memory device on which is stored instructions 
configured to cause the [[one or more]] at least one server processor to perform a method, the 
method comprising: 

receiving, at [[a]] the at least one server processor, a request from [[a]] the at least one 
client processor to establish a transmission control protocol (TCP) connection, wherein the TCP 
includes a link establishment phase and an authentication phase, wherein initiation of the link 
establishment phase occurs apart from the authentication phase, and wherein the receiving step 
and following steps occur during the link establishment phase; 

creating an extensible authentication protocol (EAP) session request; 

encapsulating the EAP session request in a standard response to the request to establish 
the TCP connection; and 

sending the standard response containing the EAP session request to the [[first]] at least 
one client processor while still in the link establishment phase, wherein the at least one client 
processor enters an authentication session with the at least one server processor as a result of 
receiving the EAP session request; 

receiving a response from the [[first]] at least one client processor in response to sending 
the standard response; 

determining whether the response from the [[first]] at least one client processor indicates 
that the [[first]] at least one client processor will comply with the authentication session; and 

if the [[first]] at least one client processor will not comply with the authentication session 
then performing a substep of restricting access of the [[first]] at least one client processor . 
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Claim 25 (Currently Amended) The apparatus of claim 24, wherein a first value is set for 
data from the [[second]] server processor to the [[first]] client processor, and where a second 
value is set for data from the [[first]] client processor to the [[second]] server processor. 

Claim 29 (Currently Amended) A computer-readable storage [[medium]] memory device 
[[including]] storing instructions executed on a server processor, the server processor executing 
said instructions computer - readable storage medium to perform a method comprising: 

one or more instructions configured to receive receiving , at [[a]] the server processor, a 
request from a client processor to establish a transmission control protocol (TCP) connection, 
wherein the TCP includes a link establishment phase and an authentication phase, wherein 
initiation of the link establishment phase occurs apart from the authentication phase, and wherein 
the receiving step and following steps occur during the link establishment phase; 

one or more instructions configured to create creating and extensible authentication 
protocol (EAP) session request; 

one or more instructions configured to encapsulate encapsulating the EAP session request 
in a standard response to the request to establish the TCP connection; and 

one or more instructions configured to send sending the standard response containing the 
EAP session request to the [[first]] client processor while still in the link establishment phase, 
wherein the client processor enters an authentication session with the server processor as a result 
of receiving the EAP session request; 

receiving a response from the [[first]] client processor in response to sending the 
standard response; 
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determining whether the response from the [[first]] client processor indicates that the 
[[first]] client processor will comply with the authentication session; and 

if the [[first]] client processor will not comply with the authentication session then 
performing a substep of restricting access of the [[first]] client processor . 

Allowance 

2. Claims 2, 3, 9-11, 13-19 & 30-57 have been cancelled. 

3. Claims 1, 4-8, 12, & 20-29 have been amended with written arguments which overcome 
the examiner's prior rejections and objections, see paper of 03/09/2010. Examiner withdraws all 
outstanding rejections and objections to Claims 1, 4-8, 12, & 20-29. 

4. Claims 1, 4-8, 12, & 20-29 are allowed. 

Examiner's Statement of Reasons for Allowance 

5. Prior art was found which disclosed method of establishing access from a terminal to a 
server [e.g. Strom (US-20020042820-A1)] and [e.g. Parhami ("Introduction to Parallel 
Processing - Algorithms and Architectures")] and [e.g. Mullen et al. (US-20020 147909- A 1)] and 
[e.g. L. Blunk & J. Vollbrecht ("RFC 2284")] and [e.g. W. Simpson ("RFC 1994")] and [e.g. 
Forsberg (US 20040148504 Al)]. 

6. The following is an examiner's statement of reasons for allowance: 

The prior art of record does not teach or render obvious the limitations as recited in 
independent Claims 1, 20, & 29, specific to "initiation of the link establishment phase 
occurs apart from the authentication phase" and "sending the standard response 
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containing the EAP session request to the first processor while still in the link 
establishment phase" and "receiving a response from the first processor in response to 
sending the standard response" and "determining whether the response from the first 
processor indicates that the first processor will comply with the authentication session" 
and "if the first processor will not comply with the authentication session then 
performing a substep of restricting access of the first processor". 
Dependent claims are allowed as they depend from an allowable independent claim. 
Therefore, the Examiner considers both the above limitation in combination with the 
remaining limitations of each independent claim as applied to authentication for the 
transmission control protocol as the non-obvious novelties of the invention. 
Any comments considered necessary by applicant must be submitted no later than the 
payment of the issue fee and, to avoid processing delays, should preferably accompany the issue 
fee. Such submissions should be clearly labeled "Comments on Statement of Reasons for 
Allowance". 

Conclusion 

7. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Examiner Oscar Louie whose telephone number is 571-270-1684. 
The examiner can normally be reached Monday through Friday from 8:30 AM to 5:00 PM. The 
examiner can also be contacted via E-mail to schedule a telephone discussion at 
OSCAR.LOUIE@USPTO.GOV. 
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If attempts to reach the examiner by telephone or E-mail are unsuccessful, the examiner's 
supervisor, Nasser Moazzami, can be reached at 571-272-4195. The fax phone number for 
Formal or Official faxes to Technology Center 2400 is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is only available through Private PAIR. If you have questions on access to the 
Private PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free) 
or 571-272-4100 (local). For more information on the PAIR system or the EBC please visit 
http://www.uspto.gov/patents/ebc/index.jsp. If you would like assistance from a USPTO 
Customer Service Representative or access to the automated information system, call 800-786- 
9199 (IN USA OR CANADA) or 571-272-1000 (local). 



/OSCAR A LOUIE/ 
04/23/2010 



/Nasser Moazzami/ 

Supervisory Patent Examiner, Art Unit 2436 



